UCSF IT Technology

GlobalProtect VPN allows users outside of the UCSF directly connected internal network to access restricted resources at UCSF (e.g., connecting to file shares, servers, desktops). The system provides a fully encrypted connection between the client device (laptop, smartphone, tablet, etc.) and the UCSF network providing access identical to systems connected via wired or wireless within UCSF facility.

• Technical Partner
• Network & Wireless

The UCSF Minimum Security Standard requires that information residing on devices be encrypted. UCSF IT Security provides and supports encryption software for Windows and MacOS computers to the UCSF community at no charge. More information about Dell Data Protection Encryption (DDPE) is available at https://it.ucsf.edu/services/dell-data-protection-encryption-ddpe.

• Faculty
• Staff
• Student
• Security

IT Security provides security awareness training and education services to UCSF faculty, staff and learners.The goals of these services include educating the UCSF community on:

• Faculty
• Staff
• Student
• Security

The UCSFguest wireless network is available wherever the protected UCSFwpa network can be found. This enables people without UCSF network accounts to access basic Campus, Medical Center and internet resources.The UCSFguest wireless network may be used by anyone visiting UCSF (including patients and patient families) who is related to UCSF business or services.

• Affiliate
• Faculty
• Non-UCSF
• Staff
• Student
• Technical Partner
• Volunteer
• Network & Wireless

eduroam (education roaming) is the secure worldwide federated network access service developed for the international research and education community.For the traveler:

• Affiliate
• Faculty
• Non-UCSF
• Staff
• Student
• Network & Wireless

Blue Coat is a tool to keep people away from dangerous websites. When a computing device on the Medical Center network tries to access a website that falls under the Phishing, Botnets or Spam categories, the user will be redirected to a custom exception page indicating that the website is blocked.

• Technical Partner
• Network & Wireless

Phish Alarm is a tool that is available to all users at UCSF. With the click of a button, users can report a phishing or malicious message. As described here, the Report Phish button is available for both PC and Mac Outlook clients as well as on Outlook Web Access (email.ucsf.edu) and the Outlook Mobile App.

• Faculty
• Staff
• Student
• Security

SSL (secure socket layer protocol), currently using TLS 1.2 or greater encryption, is used to secure transmissions between servers and clients. Example: Visiting a https address from Google Chrome or Safari. SSL / TLS certificates allow clients to verify a server's authenticity against known Certificate Authorities before establishing an encrypted connection. This helps determine if the server is who they say they are.

• Affiliate
• Faculty
• Non-UCSF
• Staff
• Technical Partner
• Security

The UCSFwpa wireless service provides protected communications to Campus and Medical Center resources and networks. It is widely available in clinical, research and administrative buildings.The UCSFwpa wireless network supports most wireless devices using 802.11a/b/g/n. It is the recommended method of network access at most UCSF locations. This service is available to faculty, staff, learners and affiliates with Active Directory (AD) accounts. 

• Affiliate
• Faculty
• Staff
• Student
• Network & Wireless

Hackers must first find weaknesses (vulnerabilities) within a system or application in order to gain control of computers and other network systems. These weaknesses can be the result of many different causes, such as not keeping systems and applications up to date or the use of insecure development and coding practices. In either case, these weaknesses could allow hackers to gain unauthorized access to UCSF systems and data. 

• Staff
• Security